$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/311C485C237911EDA2EAD419C4F9AE02.roa File: 311C485C237911EDA2EAD419C4F9AE02.roa (raw, json) Hash identifier: TOx5e2LKoTb+VXWpdmLCv4QuBtc6LN0w6QD1c0qebDE= Subject key identifier: E3:41:37:84:FA:9E:E7:29:7B:24:75:88:3C:4D:DA:1A:E8:4B:B6:68 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D1A1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/311C485C237911EDA2EAD419C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:16:09 +0000 ROA not before: Thu 08 May 2025 15:56:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132779 IP address blocks: 43.254.28.0/22 maxlen: 22 43.254.28.0/24 maxlen: 24 43.254.29.0/24 maxlen: 24 43.254.30.0/24 maxlen: 24 43.254.31.0/24 maxlen: 24 103.27.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53665 (0xd1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:56:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4baa9-cd40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cb:30:03:27:61:24:45:1a:e8:25:40:d4:b3: fe:df:f7:01:99:a3:f7:e4:e1:61:67:e2:86:4c:b2: 39:7e:a5:d3:81:be:ce:61:07:e4:8c:74:10:e0:4c: af:3b:c0:37:cd:a6:98:c3:1a:7d:3d:55:c2:80:e2: 60:44:6c:36:64:2f:0c:11:5b:da:46:62:8f:32:2e: 60:7a:de:d1:08:f6:da:99:12:7f:a8:b2:d8:1e:1b: ea:1b:31:95:ca:3c:b2:cf:87:cb:16:ef:a7:14:7e: 92:9e:5f:27:ff:1d:ff:5c:17:ce:a3:e6:04:11:6c: 85:ed:64:17:ba:c9:a4:34:2c:da:0b:80:35:1e:b1: 0d:0d:ab:46:d0:ac:6b:98:54:0a:ca:99:5a:4a:8d: 3a:61:64:b5:38:7e:f4:3b:05:00:dd:3c:9b:1b:51: ae:03:4e:fa:60:27:d7:33:d8:d0:30:53:0d:63:81: d4:60:b3:c8:ac:b8:70:70:af:80:33:f3:17:17:45: 6b:12:62:8c:27:c9:13:0e:44:a0:b7:cb:d3:d6:29: b4:ea:c3:fb:b4:0e:4c:87:be:46:f2:27:16:3d:c9: 49:2a:bb:75:42:cb:ef:19:d7:d2:f8:b4:1f:dc:77: 00:7f:30:0f:43:b4:4c:c6:0a:2e:00:c3:88:00:11: c8:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:41:37:84:FA:9E:E7:29:7B:24:75:88:3C:4D:DA:1A:E8:4B:B6:68 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/311C485C237911EDA2EAD419C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.254.28.0/22 103.27.232.0/22 Signature Algorithm: sha256WithRSAEncryption 93:d0:cc:ed:02:16:f7:be:7e:cd:2d:7b:9e:f2:15:70:50:89: 48:07:d0:d0:bc:b1:a9:42:1c:6a:0c:ce:fd:a0:07:5a:ac:df: 7e:24:e7:57:f1:b0:5a:48:63:6f:23:7f:09:65:85:11:63:cb: 10:0b:90:f7:14:ad:ae:7c:49:a2:48:c3:04:26:f2:c9:8c:0a: 6c:b8:6c:90:87:18:76:a8:ba:4a:ff:81:6a:1a:35:29:aa:b6: d4:8e:0a:17:dd:66:54:34:48:2a:a9:d7:07:ce:91:85:b6:8a: c3:53:17:0b:28:ad:f3:f9:5c:5d:18:3a:5b:d7:c8:7a:7a:70: 92:c5:8e:65:69:c3:a5:41:91:10:05:0d:c9:21:1b:99:9b:0c: aa:03:d9:31:cd:66:02:15:50:b7:25:44:9f:9a:e3:43:e5:1f: 7d:5d:fd:ed:5c:e3:8d:43:f0:73:ae:8b:af:be:e6:dd:47:77: 1e:98:03:0e:65:cc:ab:76:e4:64:02:ce:ea:7a:b1:e3:44:c0: 60:ca:25:8c:b8:d3:d8:7d:86:96:43:4d:c3:a6:d0:76:c4:06: 57:66:e1:fd:88:5e:41:af:f7:5d:77:ef:88:13:e1:37:fb:3d: e7:7b:a0:b3:9e:15:c0:04:9a:44:ef:54:fd:bd:7d:5f:63:af: 24:35:f2:e0 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIDANGhMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTY1MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJhYTktY2Q0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOTLMAMnYSRFGuglQNSz/t/3AZmj9+ThYWfihkyyOX6l04G+zmEH5Ix0EOBM rzvAN82mmMMafT1VwoDiYERsNmQvDBFb2kZijzIuYHre0Qj22pkSf6iy2B4b6hsx lco8ss+HyxbvpxR+kp5fJ/8d/1wXzqPmBBFshe1kF7rJpDQs2guANR6xDQ2rRtCs a5hUCsqZWkqNOmFktTh+9DsFAN08mxtRrgNO+mAn1zPY0DBTDWOB1GCzyKy4cHCv gDPzFxdFaxJijCfJEw5EoLfL09YptOrD+7QOTIe+RvInFj3JSSq7dULL7xnX0vi0 H9x3AH8wD0O0TMYKLgDDiAARyIcCAwEAAaOCAmYwggJiMB0GA1UdDgQWBBTjQTeE +p7nKXskdYg8Tdoa6Eu2aDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzMxMUM0ODVD MjM3OTExRURBMkVBRDQxOUM0RjlBRTAyLnJvYTAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAiv+HAMEAmcb6DANBgkqhkiG9w0BAQsFAAOCAQEAk9DM7QIW975+ zS17nvIVcFCJSAfQ0LyxqUIcagzO/aAHWqzffiTnV/GwWkhjbyN/CWWFEWPLEAuQ 9xStrnxJokjDBCbyyYwKbLhskIcYdqi6Sv+Baho1Kaq21I4KF91mVDRIKqnXB86R hbaKw1MXCyit8/lcXRg6W9fIenpwksWOZWnDpUGREAUNySEbmZsMqgPZMc1mAhVQ tyVEn5rjQ+UffV397VzjjUPwc66Lr77m3Ud3HpgDDmXMq3bkZALO6nqx40TAYMol jLjT2H2GlkNNw6bQdsQGV2bh/YheQa/3XXfviBPhN/s953ugs54VwASaRO9U/b19 X2OvJDXy4A== -----END CERTIFICATE-----Generated at Mon Mar 2 11:12:16 2026 by rpki-client